[Secure-testing-commits] r12427 - in data: . CVE

Giuseppe Iuculano derevko-guest at alioth.debian.org
Tue Jul 28 08:25:26 UTC 2009


Author: derevko-guest
Date: 2009-07-28 08:25:24 +0000 (Tue, 28 Jul 2009)
New Revision: 12427

Modified:
   data/CVE/list
   data/spu-candidates.txt
Log:
NFUs
spu notification


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-07-27 22:06:50 UTC (rev 12426)
+++ data/CVE/list	2009-07-28 08:25:24 UTC (rev 12427)
@@ -1,31 +1,31 @@
 CVE-2009-2595 (Cross-site scripting (XSS) vulnerability in productSearch.html in ...)
-	TODO: check
+	NOT-FOR-US: Censura
 CVE-2009-2594 (Cross-site scripting (XSS) vulnerability in censura.php in Censura ...)
-	TODO: check
+	NOT-FOR-US: Censura
 CVE-2009-2593 (SQL injection vulnerability in censura.php in Censura 1.16.04 allows ...)
-	TODO: check
+	NOT-FOR-US: Censura
 CVE-2009-2592 (SQL injection vulnerability in guestbook.php in PHPJunkYard GBook 1.6 ...)
-	TODO: check
+	NOT-FOR-US: PHPJunkYard
 CVE-2009-2591 (SQL injection vulnerability in the MyAnnonces module for E-Xoopport ...)
-	TODO: check
+	NOT-FOR-US: MyAnnonces module for E-Xoopport
 CVE-2009-2590 (SQL injection vulnerability in showcategory.php in Hutscripts PHP ...)
-	TODO: check
+	NOT-FOR-US: Hutscripts PHP
 CVE-2009-2589 (Multiple cross-site scripting (XSS) vulnerabilities in Hutscripts PHP ...)
-	TODO: check
+	NOT-FOR-US: Hutscripts PHP
 CVE-2009-2588 (Multiple cross-site scripting (XSS) vulnerabilities in Hotscripts Type ...)
-	TODO: check
+	NOT-FOR-US: Hotscripts Type PHP Clone Script
 CVE-2009-2587 (Multiple cross-site scripting (XSS) vulnerabilities in DragDropCart ...)
-	TODO: check
+	NOT-FOR-US: DragDropCart
 CVE-2009-2586 (Cross-site scripting (XSS) vulnerability in articles.php in EDGEPHP ...)
-	TODO: check
+	NOT-FOR-US: EZArticles
 CVE-2009-2585 (SQL injection vulnerability in index.php in Mlffat 2.2 allows remote ...)
-	TODO: check
+	NOT-FOR-US: Mlffat
 CVE-2008-6876 (Cross-site scripting (XSS) vulnerability in login.php in EsPartenaires ...)
-	TODO: check
+	NOT-FOR-US: EsPartenaires
 CVE-2008-6875 (SQL injection vulnerability in default.asp in ASP Product Catalog ...)
-	TODO: check
+	NOT-FOR-US: ASP Product Catalog
 CVE-2008-6874 (Multiple SQL injection vulnerabilities in ASP SiteWare autoDealer 1 ...)
-	TODO: check
+	NOT-FOR-US: ASP SiteWare autoDealer
 CVE-2009-XXXX [nilfs-tools privilege escalation]
 	- nilfs2-tools <not-affected> (We don't install this with setuid)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=505374

Modified: data/spu-candidates.txt
===================================================================
--- data/spu-candidates.txt	2009-07-27 22:06:50 UTC (rev 12426)
+++ data/spu-candidates.txt	2009-07-28 08:25:24 UTC (rev 12427)
@@ -112,6 +112,7 @@
 
 stardict (CVE-2009-2260)
 #534731
+notified maintainer
 
 --
 




More information about the Secure-testing-commits mailing list